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Worldwide leader in networking 
Founded in 1984 

413 in Best Global Brands 

$120+ billion market capitalization 
$50+ billion cash/cash eguivalents 
$5.9 billion a year in R&D 

160+ acquisitions 
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650+ active suppliers 

86% of products distributed via channel 
110,000+ employees and contractors 
24,000+ engineers in 1800+ labs 

14,000+ patents issued to Cisco inventors 
Global presence in 165 countries 

165 InfoSec Staff (Blue & Red) 
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What's on the Cisco Network? 
+ 1.1M public IPv4 addresses plus 1.7M private (RFC1918) 
e 125,000 Windows, 72,000 Linux, 50,000 Cisco devices, 43,000 “other” 
+ 120,000 IP phones, 70,000 BYOD mobile 
e 30,000 Data Center hosts 
e 1820 labs, 100,000+ devices 
+ 2400+ IT applications supporting 835 service offerings 
e 16 major Internet connections, ~32 TB bandwidth used daily 
e 294 partners use 547 IT extranet connections into Cisco 


e 400+ cloud/ASP providers used (officially) 
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40,000+ Network Devices! 
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Operation complete, 6506 files imported successfully, O Failed, 2190 ignored. Click here For details. 


Swap To/From Explore 
[teak I 


| {al Manage Views and Groups 
Schedule Data Collection 
Configure Patch Frequency | 


Show Suppressions Table 


@ Server connected 
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——— Y = Laptops 
O 32794 A 8,205 (CYOD) 


71,325 
Personally 
Owned 
Mobile 


n, Devices 
16,450 ; 36,104 — Other 166 (BYOD) 


Cisco's Journey of Trusted Devices 
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Device Security Posture 
es Assurance 
Encryption 
and RA 
Management | User authentication and 


authorization 
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Trusted 
Devices 


Secure storage of 
corporate data at rest 


Device 10 min PIN / 
Naming Screenlock 


Untrusted 


Devices 


Tomorrow 
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What is a Trusted Device? 


Trusted Device Elements 
+ Device Registration 
Anti-Malware 

Encryption (Cisco Data) 
Minimum OS 

Software Patching 


Remote Wipe (Cisco Data) 
Password/Screen-lock Enforcement 
Hardware/Software Inventory 
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Rooted Device Detection (Mobile Devices Only) 


Android system recovery <2> 


se trackball to highlight: 
click to select. 


[Alt+S] apply sdcard: pue: zip 
Alt+A] apply g@ny mip fr sd 
CA1t+H] wipe See cctory. reset 
[Alt+B] nandwoid v242 backup 
Alt+R] refre Latést backup 
[Alt+F] repair ext filesystems 
[Alt+X] go [ES console 
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Jailbreak to oot eae 


euicng! Serer 
nopia won't slow i i Pe ore cyefiemkxg ioyugtrivuuuuu 
Free, legal, safe. t aygonchfwnaag in viat note 
You should sync with iTunes before ert = 
d using this tool. 


More Info » 
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| Device Solution Dashboard (FY14 Q1) 
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RISK ASSESSMENT / SECURITY & | 


Extremely critical 


also affect fully pa New iOS flaw makes devices susceptible to 


Coding blunder that exposed sensitive 


covert keylogging, researchers say 


Proof-of-concept app in Apple's App Store sent keystrokes to remote server. 
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What we are faced with 
ii AVlmedic 5.3a 


e Our people are 
faced by smart 
dedicated 
attackers 


Rated 


jo] AVImedic 


O DOWNLOAD 


Click Here to Play 

AVimedic description 
wwe Ads by Google o Player 
Oy A repair tool for AVI files 
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Phishing? 
e Top Attack Vector 


e We tested ~8,000 employees, and 
~20% clicked the link. 


e Industry averages is 30% (ouch) 


¢ That's 1600 vectors directly 
against your devices! 


(one person thanked us for the 
training, then asked where they 
could purchase the TV...) 


This is special offer is only available to Cisco employees and contractors. You 
must no later then 5pm-PST on November 23, 2013. This offer is 


restricted to no more then two HDTV purchases per employee 
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O OUALYS' BROWSERCHECK 


Getting a Handle 
On User Systems m | sen 


Cisco Systems 


Last signed in on Feb 7, 2014 View: by Browsers 


e Desktop Team over tasked and 
under supported 


Show Browser Distribution 


nsecure 
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Browsers Detected 
r Chrome, 10.45K 
Chrome 


e Reviewed BrowserCheck 


Firefox, 15.96K < 


—— Others, 1.02K 
_—— Safari, 2.77K 


e Currently deploying to over 


100,000 systems. XA \ ee 


——1E 8, 258 
-IE 11, 1.48K 
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Dashboard Assets Scans Summary Plugin Distribution Platform Distribution 


Adobe Flash Linux 
Adobe Reader Mac 
rent sas “ Adobe Shockwave Mobile 
plokkaa =I Apple QuickTime inen 
Divx Web Player Others 
Asset Security Status Security Comparison Flip4Mac 
Foxit Reader 
100% Java Runtime 
80% Microsoft Silverlight 
Real Player 


60% 
2000 Total Scanned Assets VLC Player 
Windows Media 


79% 419 secure Assets vv. I] Others 
1581 insecure Assets 0% aaa 


Your Assets World Avg.* 
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THEY ‘TOLD YOU TO STOP. 
SCANNING? 


ITOO LIKE TO | 
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Find Training Live Training Online Training Programs 


Critical Security Control: 1 
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Critical Control 2 > 


tory of Authorized and Unauthorized 
ces 


ocesses and tools used to track/control/prevent/correct network access by devices (computers, 
k components, printers, anything with IP addresses) based on an asset inventory of which devices 


owed to connect to the network. 
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e Internal system process pulls IP 
address and other information fr 
multiple DBs/Stores in Cisco, 


Live Dev % scovered 


e Applies business logic (associat 
in Japan with scanners in Asia) 


+ Uploads information to Qualys 


e **Conducts discovery scans via 
half-open syn scan 


Applications & 
Business Value 


e Marks ‘awake’ hosts; checks for 
full scan J 


e Collect hosts that haven't been 
scanned recently — sends scan job to 
Qualys 
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ComplianceTracker :: Action [Reporting] :: Scope [AllCisco] 


This report shows the total number of vulnerable hosts by OS and logical location in the network. The count represents the number of hosts that have 


o Vuln data iS fed tO Unifie d at least 1 confirmed vulnerability of the stated severity level. 
Security Metrics team 


e Owners are required to 
address issues or receive 
an exception 
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Discovery scanning in IPv6 


e You can't do ‘discovery’ scanning — it's too big! 
e Scanning a /48, with one second per IP (all ports, all protocols), will take 3.8 Billion years 
e Use DHCP, DDNS, Netflow, and passive scanning to identify active hosts. 


e Once ID'd, use ‘dissolvable agents’ to assess host posture 


e IPv4 is 2432 bits in total size (4.3 Billion total IPs) 
e IPv6 is 24128 in total size (340 Undecillion IPs) 
e An IPv6 /48 has 2780 bits (Cisco has Two) 


1,208,925,819,614,629,174,706,176 IPs (~1.2 Sextillion) 


e An IPv6 /32 has 2796 bits (Cisco has Three) 


79,228,162,514,264,337,593,543,950,336 IPs (~79 Octillion) 


e An IPv6 /24 has 21104 bits (Cisco has One) 


20,282,409,603,651,670,423,947,251,286,016 IPs (~20 Nonillion) 


Summary 


It's up to you to know what's on your | MOTIVATIONGRID 
network — including phones/tablets 


The growth of phones and tablets is a 
small precursor to “The Internet of Things” 


Use tools like BrowserCheck to maintain 
awareness of host posture (that's how 
they're getting in!) 
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Scanning is a vital tool in maintaining your 
corporate asseis. 
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